SEP 11 started producing multiple notifications right after I successfully completed or applied a Service Pack upgrade against a pre-existing SQL server instance. In each case, the SEP 11 notification indicated or stated that a change had been applied against a certain file that was associated with the SQL server application which was very likely a true statement; however, the respective notifications then posed the following question (in so many words): Do you want to allow the file in question to access the network? The first notification was pretty cut & dry - [1] it referenced the SQL Server executable file and [2] it stated that a PC on the network (notification identified it as a "remote PC") was trying to access the file in question. In this case, I selected 'Yes' to allow the SQL Server executable file to access the network. The next notification referenced the SQL Manager executable file; however, this time the remote PC in question had a 169.254.X.X IP address. The server in question has a total of 3 - network interface cards (NIC) and 1 is not in use at this time; however, it has not been formally disabled to my knowledge so I am thinking that the 169.254.X.X IP address is associated with that 1 NIC in question, but I am concerned that SEP 11 is producing some many notifications - post upgrade. SEP = security and so I just want to make sure that these notifications are not related to some malicious act. Is this type of behavior normal for SEP 11? Any advice or information would be greatly appreciated. Thank you in advance.